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CLAIMS 



What is Claimed is: 

1 . An apparatus for controlling operations by a client on a stored file, said 
apparatus comprising: 

a first memory associated with the file, said first memory for storing a fixed file 
security status, said fixed file security status being of a first type; 

a second memory associated with the file, said second memory for storing an 
active file security status, said active file security status initially copied from said fixed 
lb file security status and initially being of said first type and changeable to a second 
type; 

a request handler receiving a request from the client to perform operations on 
the file, said request handler disallowing the client from performing operations on the 
file if said active file security status is of said first type and allowing the client to perform 
Njs operations on the file if said active file security status is of said second type; and 

a independent verification routine having access to a security database listing 
clients and corresponding privileges, and capable of receiving a authorization 
credential from the client, said independent verification routine causing said active file 
security status to change to said second type if said authorization credential indicates 
20 that the client has the privilege to access the file. 

2. The apparatus of claim 1 , further comprising a third memory associated with the 
file, said third memory for storing a delete-on-close status, said delete-on-close status 
initially set to a first value and changeable to a second value, 
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_ wherein siid first value indicates that the file will not be deleted upon closing 

jf- and the second t/pe indicates that the file will be deleted upon closing. 

3. The apparatus of claim 2, wherein said first memory is a non-volatile random- 
access memory and said second memory and third memory are in a file entry. 
5 4. The apparatus of claim 3, wherein said first memory, said second memory, and 
said third memory comprise single bits. 

5. A method for controlling operations by a client on a file stored on an apparatus, 
said apparatus having a first memory associated with said file, said first memory for 
storing a fixed file security status of a first type, a second memory associated with said 
hp file, said second memory capable of storing an active file security status of a first type 

yi and changeable to a second type wherein said first type indicates that operations are 
J;! not allowed on the file and said second type indicates that operations are allowed on 
111 the file, and a independent verification routine, said independent verification routine 

s 

having access to a security database listing clients and their corresponding privileges 



!Tj5 and receiving a authorization credential from said client, the method comprising: 

■ n 

copying said first type from said fixed file security status stored in said first 
memory to said active file security status stored in said second memory; 
receiving said authorization credential from said client; and 
changing said active file security status stored in said second memory to said 
20 second type if said independent verification routine determines that the client has the 

privilege to access the file, 
y^l 6. The fnethod of claim 5, wherein the apparatus has a third memory associated 
^q! with the file said third memory storing a delete-on-close status, said third memory 
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initially storing ^first value and changeable to a second value wherein said first value 
the 



indicates that 



that the file will 
receiving 
changing 
deleting 



file will not be deleted upon closing and said second value indicates 



^e deleted upon closing, further comprising: 
a delete-on-close request from said client; 
said first value to said second value; and 
he file upon closing. 

7. The method of claim 6, wherein said first memory is an NVRAM and said 
second memory and said third memory are in a file entry. 

8. The method of claim 6, wherein said first memory, said second memory, and 
10 said third memory comprise single bits. 

- t| 9. A program storage device readable by a machine, tangibly embodying a 

■j 

:« program of instructions executable by the machine to perform a method for controlling 
operations by a client on a file stored on an apparatus, said apparatus having a first 
memory associated with said file, said first memory for storing a fixed file security 
15 status of a first type, a second memory associated with said file, said second memory 
;; capable of storing an active file security status of a first type and changeable to a 
} second type wherein said first type indicates that operations are not allowed on the file 
and said second type indicates that operations are allowed on the file, and a 
independent verification routine, said independent verification routine having access 
10 to a security database listing clients and their corresponding privileges and receiving 
a authorization credential from said client, the method comprising: 

copying said first type from said fixed file security status stored in said first 
memory to said active file security status stored in said second memory; 
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receiving said authorization credential from said client; and 

changing said active file security status stored in said second memory to said 

second type if said independent verification routine determines that the client has the 

privilege to access the file. 



4 



10. A methc 



receivin j from a user an open for write call for a file that does not exist at the 



4o 



time the call is 
recogni 
creatine 
receivir 
authenf 



d for creating a secure file on a file system, the method comprising: 



received; 

;:ing that the file does not exist at the time the call is received; 
a file entry for said file; 
g from said user an authorization credential; 
icating the privileges of the user; 
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recognizing the combination of a user sending an open for write call for a file 
that does not exist at the time the call is received and an authorization credential that is 
authenticated; and 

creati ig a secure file. 
, 11. Th< method of claim 1 0, further comprising: 

setting a memory location associated with the file to a value indicating that the 
file is a secure file. 

12. The method of claim 10, further comprising: 
closing said file entry. 

13. A prociram storage device readable by a machine, tangibly embodying a 
program of ir structions executable by the machine to perform a method for creating a 
secure file on a file system, the method comprising: 
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receiving from a user an open for write call for a file that does not exist at the 



time the call is 



authen 
recogn 
that does not 



received; 

recognizing that the file does not exist at the time the call is received; 
creatine) a file entry for said file; 
receiving from said user an authorization credential; 
icating the privileges of the user; 

zing the combination of a user sending an open for write call for a file 
exist at the time the call is received and an authorization credential that is 



authenticatec 



and 



creating a secure file. 



0"< 



21 



